PT-2008-5531 · Epic Games · Webadmin+1
Luigi Auriemma
·
Publicado
2008-09-25
·
Atualizado
2017-09-29
·
CVE-2008-4243
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Unreal Tournament 3 (UT3) WebAdmin versions prior to 1.7
Description:
A directory traversal issue exists in the ImageServer component of WebAdmin for Epic Games Unreal Tournament 3, allowing remote attackers to read arbitrary files by including a .. (dot dot) in the URI.
Recommendations:
For versions prior to 1.7, update WebAdmin to version 1.7 or later to resolve the issue.
Exploit
Correção
Path traversal
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Unreal Tournament 3
Webadmin